11-10-2024_eGd5xgNQfo1yWO1[.]zip

Sharing

Copy URL

Twitter E-mail

General

Target

11-10-2024_eGd5xgNQfo1yWO1.zip
Size

12.7MB
MD5

11db0b1221911c249507c7e92d72ad22
SHA1

37c9e60f2b543cc4197aec021a68baea8c1d7119
SHA256

051a903d86929848bceee25482b3e745ef5f1396a09944f731df5757d486c3b5
SHA512

971080a4997a0668a639c231dd19facd68f760c22007e53acd7e97039d27b6cb0a980f9fc576ed8d3b318fef7f2c091f5333e3eab92feb504bbeb0e1f045fa09
SSDEEP

393216:e5m+gaf6WyjnKeHzJKUPY7SDL0upNz/xW4sndV3e:ePv6WOKCzJKqY+DF/xWt3e

Score

7^/10

themida

Malware Config

Signatures

Themida packer 1 IoCs

Detects Themida, an advanced Windows software protection system.

themida

resource	yara_rule
static1/unpack001/Nenyooo v1.0.3028.0.7/Nenyooo v1.0.3028.0.7.exe	themida

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Nenyooo v1.0.3028.0.7/Nenyooo v1.0.3028.0.7.exe

Files

11-10-2024_eGd5xgNQfo1yWO1.zip
.zip

Password: 123
Nenyooo v1.0.3028.0.7/All Hacks, Cheats, Injectors.url
Nenyooo v1.0.3028.0.7/Nenyooo v1.0.3028.0.7.exe
.exe windows:6 windows x64 arch:x64

Password: 123

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

Size: 202KB - Virtual size: 391KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Size: 206KB - Virtual size: 587KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 4.3MB - Virtual size: 9.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 9KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 62KB - Virtual size: 401KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 294B - Virtual size: 312B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.imports
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 402KB - Virtual size: 402KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.themida
Size: - Virtual size: 5.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.boot
Size: 3.3MB - Virtual size: 3.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 16B - Virtual size: 4KB

IMAGE_SCN_MEM_READ
Nenyooo v1.0.3028.0.7/Nenyooo/Extra/Appearance/Barbie Barb.xml
.xml
Nenyooo v1.0.3028.0.7/Nenyooo/Extra/Appearance/Barbie.xml
.xml
Nenyooo v1.0.3028.0.7/Nenyooo/Extra/Maps/Aerial_Islands.xml
Nenyooo v1.0.3028.0.7/Nenyooo/Extra/Maps/Upside_Down_World.xml
Nenyooo v1.0.3028.0.7/Nenyooo/Extra/Vehicle/All_Vehicle.ini
Nenyooo v1.0.3028.0.7/Nenyooo/Extra/Vehicle/XML/Birthday sex by Spine.xml
.xml
Nenyooo v1.0.3028.0.7/Nenyooo/Extra/Vehicle/XML/Carrier Invader (by Spine).xml
.xml
Nenyooo v1.0.3028.0.7/Nenyooo/Extra/Vehicle/XML/Rolling Destruction by Spine - Copy.xml
.xml
Nenyooo v1.0.3028.0.7/Nenyooo/Extra/Vehicle/XML/Spinethetic-FuckT2Blimp.xml
.xml
Nenyooo v1.0.3028.0.7/Nenyooo/Extra/Vehicle/XML/Spinethetic-HamburgersRevenge.xml
.xml
Nenyooo v1.0.3028.0.7/Nenyooo/Extra/Vehicle/XML/Spinethetic-XmasSleighBoat.xml
.xml
Nenyooo v1.0.3028.0.7/Nenyooo/Extra/Vehicle/XML/Spinethetic-ZombieSabreGT.xml
.xml
Nenyooo v1.0.3028.0.7/Nenyooo/User Interface/Audio/Xmas.wav
Nenyooo v1.0.3028.0.7/Nenyooo/User Interface/Fonts/Options.ttf
Nenyooo v1.0.3028.0.7/Nenyooo/User Interface/Fonts/Title.ttf
Nenyooo v1.0.3028.0.7/Nenyooo/User Interface/Textures/Header.gif
.gif
Nenyooo v1.0.3028.0.7/Nenyooo/User Interface/Textures/Header.png
.png

Password: 123
Nenyooo v1.0.3028.0.7/Nenyooo/User Interface/Textures/Options.png
.png

Password: 123
Nenyooo v1.0.3028.0.7/Nenyooo/User Interface/Textures/Right Arrow.png
.png

Password: 123

Sharing

General

Malware Config

Signatures

Files

Password: 123

Password: 123

Headers

DLL Characteristics

File Characteristics

Sections

Size: 202KB - Virtual size: 391KB

Size: 206KB - Virtual size: 587KB

Size: 4.3MB - Virtual size: 9.4MB

Size: 9KB - Virtual size: 16KB

Size: 62KB - Virtual size: 401KB

Size: 294B - Virtual size: 312B

.imports Size: 1KB - Virtual size: 4KB

.tls Size: 512B - Virtual size: 4KB

.rsrc Size: 402KB - Virtual size: 402KB

.themida Size: - Virtual size: 5.7MB

.boot Size: 3.3MB - Virtual size: 3.3MB

.reloc Size: 16B - Virtual size: 4KB

Password: 123

Password: 123

Password: 123

.imports
Size: 1KB - Virtual size: 4KB

.tls
Size: 512B - Virtual size: 4KB

.rsrc
Size: 402KB - Virtual size: 402KB

.themida
Size: - Virtual size: 5.7MB

.boot
Size: 3.3MB - Virtual size: 3.3MB

.reloc
Size: 16B - Virtual size: 4KB